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AMENDMENTS TO THE CLAIMS 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

LISTING OF CLAIMS: 

1. (Currently amended) A method for use in authenticating a service network to a station, 
the station having a home environment network, the method comprising: 

storing a key at the service network; 

transmitting information to the station from the service network that enables the 
station to compute the key stored at the service network; 

receiving a request for service at the service network from the station; 
adjusting a verification value at each usage of the key; and 

transmittin g, from the service network to the station, information corresponding to 
the verification value to tho otation that forms a part of a verification computation 
enabling the station to authenticate the service network, 

2. (Original) The method of claim 1, further comprising 

receiving a vector of authentication information from the home environment 
network of the station, the vector including an indication of the vector's position in a 
sequence of vectors; and 

wherein transmitting information to the station that enables the station to compute 
the key stored at the service network comprises transmitting portions of the received 
vector of authentication information. 

3. (Original) The method of claim 2, wherein the received vector of authentication 
information comprises the key stored by the service network. 
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4. (Original) The method of claim 2, further comprising computing at the service network 
the key stored by the service network based on information included in the received 
vector. 

5. (Previously presented) The method of claim 1 , wherein adjusting a verification value 
comprises incrementing a sequence number corresponding to a number of times the key 
has been used. 

6. (Previously presented) The method of claim 5, wherein the verification value 
comprises a TSQN (Temporary Sequence Number).' 

7. (Original) The method of claim 1, wherein 

the station comprises a cellular phone; and 

the service network and home environment networks comprise cellular networks. 

8. (Original) The method of claim 1, further comprising using the key to compute a 
cipher key for encrypting conmiunication between the service network and the station, 

9. (Original) The method of claim 1, further comprising negotiating use of a 
cryptographic primitive between the service network and the home environment network. 

10. (Original) The method of claim 1, further comprising 

transmitting a challenge to the station; 

receiving a challenge response fix>m the station; and 

comparing the received challenge response with an expected response. 

1 1 . (Original) The method of claim 1 , further comprising: 

computing the key stored by the service network at the station; 
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receiving the information indicating the value corresponding to key usage at the 
station; and 

comparing the received value with a value corresponding to key usage maintained 
by the station. 

12. (Currently amended) A method for use in authenticating a service network to a 
station, the station having a home environment network, the method comprising; 

receiving information at the station from the service network; 

computing a key based on the information roooivod at the station transmitted from 
the service network to the station, the computed key also being stored by the service 
network; 

maintaining an indicator of key usage at the station; 



usage indicator maintained by the station enabling the station to authenticate the service 
network . 

13. (Original) The method of claun 12, further comprising: 

maintaining an authentication vector sequence number at the station; 

receiving at the station from the service network an indication of an authentication 
vector sequence number maintained by the home environment network; and 

comparing the authentication vector sequence number maintained by the home 
environment network with the received authentication vector sequence number 
maintained by the station. 

14. (Original) The method of claim 13, further comprising receiving from the service 
network identification of a cryptographic primitive. 
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15. (Original) The method of claim 12, wherein 

the station comprises a cellular phone; and 

the service network and home environment network comprise cellular networks. 

16. (Original) The method of claim 1 2, further comprismg: 

using the key to compute a cipher key for encrypting commxmication between the 
service network and the station. 

17. (Original) The method of claim 1 2, further comprising: 

receiving a challenge from the service network; 

determining a challenge response; and 

transmitting the challenge response to the service network. 

18. (Original) The method of claim 12, wherein maintaining an indicator of key usage at 
the station comprises maintaining a key sequence number counter. 

19. (Currently amended) A method for use in authentication in a communications 
network including a home environment network, a service network, and a station, the 
method comprising: 

storing a kev at the service network; 

transmitting information to the station from the service network that enables the 
station to compute the kev stored at the service network: 

receiving a request for service at the service network from the station: 
adjusting a verification value at each usage of the kev: 

transmitting^ from the service network to the station, information corresponding to 
the verification value that forms a part of a verification computation enabling the station 
to authenticate the service network: 
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determining at the home environment network a cryptographic primitive offered 
to the home environment hy the service network; 
and 

based on the determined cryptographic primitive, transmitting to the service 
network at least one vector of authentication information corresponding to a particular 
station. 

20. (Original) The method of claim 19, wherein determining comprises receiving 
identification of the cryptographic primitive from the service network. 

21 . (Original) The method of claim 20, wherein the identification comprises a value of a 
MODE field. 

22. (Original) The method of claim 19, wherein the vector of authentication mformation 
comprises an indication of an authentication vector sequence number maintained by the 
home environment network. 

23. (Original) The method of claim 22, wherein the vector of authentication infonnation 
comprises a challenge and an expected response. 

24. (Currently amended) A method for use by a mobile station that can communicate 
with different service networks, the method comprising: 

storing different sets of cryptographic infomiation for the different respective 
service networks; 

selecting one of the sets of cryptographic information for one of the service 
networks; and 

using the one selected set of cryptogr^hic information to commimicate with the 
one of the service network s to authenticate the one of the service network s to the station 
by: 
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storing a key at the one of the service networks: 

transmitting information to the station from the one of the service 

networks that enables the station to compute the kev stored at the one of the service 

networks: 

receiving a request for service at the one of the service networks from the 

station: 

adjusting a verification value at each usage of the kev: and 
transmitting, from the one of the service networks to the station, 
information corresponding to the verification value that forms a part of a verification 
computation enabling the station to authenticate the service network , 

25. (Currently amended) The method of claim 24, wherein each of the sets of 
cryptographic information comprises tfie key shared by the station and a respective 
service network, 

26. (Previously presented) The method of claim 25, further comprising computing the 
key shared by the station and the one service network based on information received from 
the one service network. 

27. (Currently amended) The method of claim 25, wherein each of the sets of 
cryptographic information [[comprise]] comprises an indicator of usage of the key. 

28. (Original) The method of claim 27, wherein the indicator of usage comprises a 
sequence number. 

29. (Previously presented) The method of claim 27, further comprising: 

receiving from the one service network an indicator of key usage maintained by 
the one service network; and 
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comparing the indicator of key usage maintained by the one service network with 
the indicator of key usage included in the one selected set of cryptographic information. 

30. (Previously presented) The method of claim 25, wherein using the one selected set of 
cryptographic information comprises using the one selected set of cryptogr^hic 
information to authenticate the service network. 

31 . (Previously presented) The method of claim 25, wherein using the one selected set of 
cryptographic information comprises using the one selected set of cryptographic 
information in encrypting communication between the station and the service network. 

32. (Currently amended) A method of handling authentication and key agreement in a 
system including a home environment network, a service network, and a mobile station, 
the method including authenticatin^ the service network to the mobile station, t he home 
environment network and the mobile station sharing a secret key K, the method 
comprising: 

determining whether the home environment and the service network share a 
cryptographic primitive offered by the service network; 

if it is determined that the home environment and the service network do not share 
a cryptographic primitive, handling authentication and key agreement between the mobile 
station and the service network using 3GPP (Third Generation Project Partners) AKA 
(authentication and key agreement); and 

if it is determined that the home environment and the service network share a 
cryptographic primitive, handling authentication and key agreement and authenticating 
the service network to the mobile station bv: 

computing a shared secret key (SSK) within the system excluding the 

station : 

storing the SSK at the service network: 
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transmitting information from the service network to the station that 

enables the station to compute the SSK; {[snd]] 

replacing the use of K in the 3GPP AKA with the SSK; 
receiving a request for service at the service network from the station: 
adjusting a verification value at each usage of the SSK: and 
transmitting^ from the service network to the sta tion, information 

corresponding to the verification value that forms a part of a verification computation 

enabhng the station to authenticate the service network . 
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